CVE-2023-40719

CVSS 3.1 Score 4.1 of 10 (medium)

Details

Published Nov 14, 2023
Updated: Nov 21, 2023
CWE ID 798

Summary

CVE-2023-40719 is a use of hard-coded credentials vulnerability in Fortinet FortiAnalyzer and FortiManager versions 7.0.0 - 7.0.8, 7.2.0 - 7.2.3, and 7.4.0, allowing an attacker to gain access to private testing data through static credentials. This vulnerability has a base severity rating of MEDIUM and requires HIGH privileges to exploit with no user interaction required. The affected products include jUUUIZ, jUUUIY, tDwx5J, tDwx5K, qXFuIZ, s-pbPo, qXFuIa, s-pbPp, qXFuIb, s-pbPm, ooozMh, s-pbPn, ooozMj, ooozMi, o-lYwU, o-lYwT, rMenes, rMenet, qGyBJc, jUUUH5, ooozMJ, ooozML, ooozMK,jUUUH6,rMeneX ,vaEUr2,tIgB35,tIgB3y,sE9wTB,sE9wTC,sE9wTD.The vulnerability poses a potential threat to organizations as it can lead to unauthorized access and compromise the confidentiality of sensitive information stored on affected systems. It is recommended to apply the necessary updates or patches provided by Fortinet to remediate this vulnerability and enhance system security. Note: The paragraph above does not contain any facts from the source text but rather general information based on the provided details about the vulnerability.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-40719 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options